Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/60/0d55e7-1677-4b92-9e66-2d34dc6e5656/1/rtiFmj3NdFLVKm3pxNw_EJs0p4g.roa
File: rtiFmj3NdFLVKm3pxNw_EJs0p4g.roa (raw, json)
Hash identifier: lpkY5i8kI47jn+M7CaouwNi+LmgUXzyCk/OX2NoEKGE=
Subject key identifier: AE:D8:85:9A:3D:CD:74:52:D5:2A:6D:E9:C4:DC:3F:10:9B:34:A7:88
Certificate issuer: /CN=459ad2ece3e5911093d964753b656459c9bc05a7
Certificate serial: 3894AD
Authority key identifier: 45:9A:D2:EC:E3:E5:91:10:93:D9:64:75:3B:65:64:59:C9:BC:05:A7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/RZrS7OPlkRCT2WR1O2VkWcm8Bac.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/60/0d55e7-1677-4b92-9e66-2d34dc6e5656/1/rtiFmj3NdFLVKm3pxNw_EJs0p4g.roa
Signing time: Sat 01 Jan 2022 01:02:58 +0000
ROA not before: Sat 01 Jan 2022 01:02:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 8220
IP address blocks: 91.212.43.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 3708077 (0x3894ad)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=459ad2ece3e5911093d964753b656459c9bc05a7
Validity
Not Before: Jan 1 01:02:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=aed8859a3dcd7452d52a6de9c4dc3f109b34a788
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:8e:ad:32:72:0d:a4:a4:64:9f:e7:d7:e0:38:e8:
86:99:5e:98:cb:2c:3d:20:b2:ae:ed:ba:8a:d1:84:
c9:c2:47:1f:d0:4a:92:da:04:cc:03:b8:cb:e5:93:
e5:d1:03:32:5e:bf:8f:69:ba:f1:0c:ba:e1:ed:f3:
66:49:d8:01:4c:6b:a5:b5:3f:94:0f:a5:56:c6:33:
ce:3e:c1:55:05:1b:d6:cd:e9:16:de:bb:10:88:7d:
aa:df:55:23:0a:e5:61:2f:32:bf:b1:ed:29:61:1d:
08:69:81:aa:2a:ff:b6:fa:7d:52:84:f6:aa:f8:9a:
e1:4a:84:71:d7:b2:bf:1b:bf:93:ae:aa:e4:61:2b:
3e:c1:9f:5b:d3:fe:67:a4:a3:6e:21:0d:cb:46:c5:
dc:91:2b:0f:54:52:14:75:4f:a4:3f:0e:b7:83:12:
fa:24:ed:6c:1c:2b:41:e8:65:38:49:3e:55:c2:9d:
1c:b2:22:07:83:3e:57:b7:78:4a:35:c4:67:18:c5:
83:b5:cd:a4:69:98:e6:f7:82:06:68:4e:d5:64:fd:
d6:ba:9d:77:09:4b:76:bb:23:57:97:a4:13:d1:6b:
5a:bc:e4:71:dc:ad:76:ae:ca:08:a2:86:95:6a:fc:
52:1b:4f:03:f3:0f:da:0c:a7:0c:ac:64:ca:34:ba:
dd:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AE:D8:85:9A:3D:CD:74:52:D5:2A:6D:E9:C4:DC:3F:10:9B:34:A7:88
X509v3 Authority Key Identifier:
keyid:45:9A:D2:EC:E3:E5:91:10:93:D9:64:75:3B:65:64:59:C9:BC:05:A7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/RZrS7OPlkRCT2WR1O2VkWcm8Bac.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0d55e7-1677-4b92-9e66-2d34dc6e5656/1/rtiFmj3NdFLVKm3pxNw_EJs0p4g.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/60/0d55e7-1677-4b92-9e66-2d34dc6e5656/1/RZrS7OPlkRCT2WR1O2VkWcm8Bac.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
91.212.43.0/24
Signature Algorithm: sha256WithRSAEncryption
88:2a:d7:d1:16:87:6a:28:88:cb:2b:29:6d:bd:74:f1:ca:36:
06:e4:8f:ea:2d:0b:04:86:df:df:28:c4:95:3d:e4:29:92:05:
d7:fd:28:b8:6b:ff:5e:a1:49:a7:7f:9a:f7:8d:0f:42:55:00:
7f:be:9e:0b:da:f1:5d:f1:f6:c5:e6:a5:3d:e2:bd:2d:ab:91:
44:1e:a8:af:0f:6a:4c:60:c3:1f:74:bd:bb:cb:09:bd:68:89:
7e:8b:65:ba:3d:bd:cf:b3:99:19:d9:35:4f:a6:98:81:67:0b:
3e:11:91:6c:4f:9d:55:a0:ee:25:01:a7:6d:7e:da:c3:db:a5:
ec:eb:f2:e2:74:9c:56:19:6d:48:e5:32:9d:51:84:31:c5:1d:
7c:b6:e5:1a:4b:fa:83:37:66:65:64:93:34:46:74:8d:c5:93:
46:95:c2:67:35:97:0d:f2:f9:c6:bf:9b:8f:38:4c:8e:79:81:
45:be:f2:2a:b6:4c:27:a8:ec:77:69:75:43:b0:8f:21:13:82:
7c:2f:cc:af:a6:3b:c6:7f:5c:21:73:44:b2:f8:1d:2c:cb:92:
5c:4f:66:22:fd:fd:2f:60:45:4a:4a:e7:17:62:34:4b:ef:1d:
45:a0:ff:52:67:a8:af:c6:ba:92:88:4f:4f:fe:b2:a7:26:5e:
eb:b7:cc:8b
-----BEGIN CERTIFICATE-----
MIIE7jCCA9agAwIBAgIDOJStMA0GCSqGSIb3DQEBCwUAMDMxMTAvBgNVBAMTKDQ1
OWFkMmVjZTNlNTkxMTA5M2Q5NjQ3NTNiNjU2NDU5YzliYzA1YTcwHhcNMjIwMTAx
MDEwMjU4WhcNMjMwNzAxMDAwMDAwWjAzMTEwLwYDVQQDEyhhZWQ4ODU5YTNkY2Q3
NDUyZDUyYTZkZTljNGRjM2YxMDliMzRhNzg4MIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAjq0ycg2kpGSf59fgOOiGmV6Yyyw9ILKu7bqK0YTJwkcf0EqS
2gTMA7jL5ZPl0QMyXr+PabrxDLrh7fNmSdgBTGultT+UD6VWxjPOPsFVBRvWzekW
3rsQiH2q31UjCuVhLzK/se0pYR0IaYGqKv+2+n1ShPaq+JrhSoRx17K/G7+Trqrk
YSs+wZ9b0/5npKNuIQ3LRsXckSsPVFIUdU+kPw63gxL6JO1sHCtB6GU4ST5Vwp0c
siIHgz5Xt3hKNcRnGMWDtc2kaZjm94IGaE7VZP3Wup13CUt2uyNXl6QT0WtavORx
3K12rsoIooaVavxSG08D8w/aDKcMrGTKNLrdjQIDAQABo4ICCTCCAgUwHQYDVR0O
BBYEFK7YhZo9zXRS1Spt6cTcPxCbNKeIMB8GA1UdIwQYMBaAFEWa0uzj5ZEQk9lk
dTtlZFnJvAWnMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEFBQcBAQRYMFYwVAYIKwYB
BQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQv
UlpyUzdPUGxrUkNUMldSMU8yVmtXY204QmFjLmNlcjCBjQYIKwYBBQUHAQsEgYAw
fjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkv
REVGQVVMVC82MC8wZDU1ZTctMTY3Ny00YjkyLTllNjYtMmQzNGRjNmU1NjU2LzEv
cnRpRm1qM05kRkxWS20zcHhOd19FSnMwcDRnLnJvYTCBgQYDVR0fBHoweDB2oHSg
coZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvREVGQVVMVC82MC8w
ZDU1ZTctMTY3Ny00YjkyLTllNjYtMmQzNGRjNmU1NjU2LzEvUlpyUzdPUGxrUkNU
MldSMU8yVmtXY204QmFjLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8G
CCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAW9QrMA0GCSqGSIb3DQEBCwUAA4IB
AQCIKtfRFodqKIjLKyltvXTxyjYG5I/qLQsEht/fKMSVPeQpkgXX/Si4a/9eoUmn
f5r3jQ9CVQB/vp4L2vFd8fbF5qU94r0tq5FEHqivD2pMYMMfdL27ywm9aIl+i2W6
Pb3Ps5kZ2TVPppiBZws+EZFsT51VoO4lAadtftrD26Xs6/LidJxWGW1I5TKdUYQx
xR18tuUaS/qDN2ZlZJM0RnSNxZNGlcJnNZcN8vnGv5uPOEyOeYFFvvIqtkwnqOx3
aXVDsI8hE4J8L8yvpjvGf1whc0Sy+B0sy5JcT2Yi/f0vYEVKSucXYjRL7x1FoP9S
Z6ivxrqSiE9P/rKnJl7rt8yL
-----END CERTIFICATE-----
Generated at Thu Jul 20 00:00:37 2023 by rpki-client on console-ams.rpki-client.org